The real dangers are not in the software—they are external
En Colombia, la tensión entre el poder ejecutivo y la autoridad electoral revela una pregunta más profunda sobre la naturaleza de la confianza democrática: ¿quién tiene el derecho de exigir transparencia, y hasta qué punto esa exigencia puede convertirse en un riesgo para aquello que pretende proteger? El Registrador Nacional Hernán Penagos ha rechazado la demanda del presidente Gustavo Petro de divulgar el código fuente del software electoral, argumentando que hacerlo abriría la puerta a la manipulación futura, no la cerraría. En un sistema donde los resultados oficiales descansan sobre papeletas físicas firmadas a mano, la batalla por el código parece librada en el terreno equivocado.
- El presidente Petro intensifica sus acusaciones de fraude electoral exigiendo acceso público al código fuente del software de votación, poniendo en entredicho la legitimidad del sistema antes de que los comicios ocurran.
- El Registrador Penagos responde con firmeza: publicar el código equivale a entregar a actores maliciosos el mapa exacto de las vulnerabilidades del sistema, habilitando desde ataques informáticos hasta la creación de interfaces falsas que engañen a los votantes.
- La controversia choca con una realidad técnica incómoda: los resultados oficiales no dependen del software sino de formularios E-14 en papel, firmados por testigos electorales en cada mesa de votación.
- El sistema ya fue auditado línea por línea por el organismo internacional Capel, y los partidos políticos tuvieron acceso supervisado al cien por ciento del código durante dos semanas en salas seguras.
- La semana próxima el código será congelado con cifrado criptográfico bajo custodia de la Procuraduría, mientras los verdaderos riesgos electorales —compra de votos, coerción, financiación ilegal y grupos armados— permanecen sin el mismo nivel de escrutinio público.
El presidente Gustavo Petro ha renovado sus cuestionamientos al sistema electoral colombiano exigiendo la divulgación del código fuente del software de votación, insistiendo en señalamientos de fraude. El Registrador Nacional Hernán Penagos ha rechazado la solicitud de manera categórica, explicando en entrevistas con La FM y la revista Semana que publicar ese código representaría un riesgo grave para la integridad democrática: cualquier persona con intenciones maliciosas podría estudiar sus vulnerabilidades y explotarlas, o fabricar versiones falsas del software para engañar a los votantes en elecciones futuras.
Penagos subrayó un elemento que desdibuja gran parte de la alarma en torno al software: el sistema electoral colombiano es esencialmente manual. Los resultados oficiales no los determina ningún programa informático, sino los formularios E-14 en papel, diligenciados y firmados por los jurados de votación en cada mesa. Ninguna alteración digital puede imponerse sobre lo que queda escrito y autenticado en físico.
El registrador también recordó que el sistema no ha estado blindado al escrutinio. El organismo internacional Capel realizó una auditoría línea por línea y certificó su confiabilidad. Adicionalmente, los partidos políticos y observadores internacionales tuvieron acceso supervisado al cien por ciento del código durante dos semanas en salas seguras. El código se encuentra actualmente bajo custodia de la Procuraduría General y será congelado la próxima semana mediante una llave criptográfica que hará detectable cualquier modificación no autorizada.
Cuando se le preguntó por las amenazas reales a la transparencia electoral, Penagos señaló en otra dirección: la compra de votos, la coacción a los electores, la financiación ilegal de campañas y la presencia de grupos armados en regiones vulnerables. Esos, dijo, son los verdaderos frentes de batalla. La disputa por el código fuente, en su lectura, distrae la atención de los riesgos concretos que sí pueden torcer el resultado de unas elecciones.
President Gustavo Petro has renewed his attack on Colombia's electoral authority, demanding access to the source code of the voting software and continuing to assert claims of electoral fraud. Hernán Penagos, the country's National Registrar, has flatly refused. In recent interviews with La FM radio and Semana magazine, Penagos laid out why he will not comply: releasing the code would create what he calls a "grave risk" to the integrity of the democratic process itself.
The core of Penagos's argument is straightforward and technical. The source code contains the architectural blueprint and programming lines that run the system's preliminary vote counting and official tabulation modules. If that code became public, he explained, people with malicious intent—hackers, in the common parlance—could study it line by line, identify vulnerabilities, and exploit them to alter the system. More insidiously, access to the official code would allow bad actors to create counterfeit versions of the electoral software, meaning voters could be directed to fake websites or interfaces that look legitimate but are not. The damage would compound across future elections, not just the current one.
Penagos has also emphasized a fact that undercuts much of the anxiety around software manipulation: Colombia's electoral system is fundamentally manual. The official results do not depend on any software at all. They depend on physical ballots—the E-14 forms—that are filled out and signed by poll workers at each voting location. No computer program can change what is written and authenticated on paper. Any attempt to alter the digital record would be meaningless if the physical ballots tell a different story.
The registrar has not left the system unexamined. The software has already undergone rigorous international audit by Capel, the Center for Electoral Advice and Promotion, which conducted a line-by-line review and certified the system as reliable. Beyond that, the code was made available for two weeks in secure audit rooms where political parties and international observers could review one hundred percent of the system. The transparency was real; the access was granted.
Penagos also clarified the current status of the code itself. It is held in custody by the office of the Procurator General of the Nation. Next week, he said, it will be frozen—locked with a cryptographic verification key that will make any unauthorized changes detectable. This is a safeguard against tampering before the election.
When asked about the actual threats to electoral integrity, Penagos pointed elsewhere entirely. The real dangers, he said, are not in the software. They are external: vote-buying, coercion of voters at the polls, illegal campaign financing, and the presence of armed groups in vulnerable regions where they can influence the outcome through force. These are the fractures in the system that matter. These are what require attention and resources. The demand for source code, in his view, is a distraction from the harder work of securing the election where it is actually vulnerable.
Notable Quotes
Releasing the code would allow hackers to identify vulnerabilities and modify the system, and would enable third parties to create counterfeit versions of the official software.— Hernán Penagos, National Registrar
The real electoral threats come from vote-buying, voter coercion, illegal campaign financing, and armed group presence in vulnerable regions.— Hernán Penagos, National Registrar
The Hearth Conversation Another angle on the story
Why does the registrar believe releasing the code would be worse than keeping it secret? What's the actual mechanism of harm he's describing?
He's saying that once the code is public, anyone with programming skill can map out how the system works—find the weak points, the places where logic breaks down. Then they can either attack it directly or, more cleverly, build a fake version that looks identical to voters. It's not abstract; it's a blueprint for sabotage.
But he also said the system is mostly manual. So even if someone corrupts the software, wouldn't the paper ballots catch it?
Exactly. That's his strongest point, and it's almost buried in his argument. The software doesn't decide anything. It's a tool for counting and transmitting what's already on paper. So yes, the ballots are the real record. But releasing the code still matters because it could undermine public confidence in the system, even if the system itself is sound.
So this is partly about trust, not just technical security?
It has to be. If people believe the software has been compromised, they won't trust the results, even if the physical ballots are clean. And once you lose that trust, the election itself becomes unstable.
The president keeps pushing for the code. What does he actually want to prove?
That's the question underneath everything. He's alleging fraud happened. If he could examine the code, maybe he thinks he'd find evidence. But the registrar is saying: we've already let independent auditors and party observers look at it. What more proof do you need?
And the registrar's point about the real threats—vote-buying, armed groups—is that a deflection or a legitimate concern?
Both, probably. It's a legitimate concern; those things are documented problems in Colombian elections. But it's also a way of saying: if you're really worried about fraud, look there, not at the software. The software is not where the vulnerability lies.